chore: add agentic tooling, cleanup
This commit is contained in:
Flo
@@ -87,7 +87,7 @@ disabled = ["force-push"]
|
||||
|
||||
## Architecture
|
||||
|
||||
- **Rust shim** — ~1MB static binary, <1ms startup, forwards payloads via Unix socket
|
||||
- **Rust shim** — all three AI tools invoke hooks by spawning a process, piping JSON to stdin, and reading JSON from stdout. That process has to exist, but the rule engine lives in a long-running Elixir daemon for hot-reload and sub-millisecond evaluation. The shim bridges the two: a ~1MB static Rust binary that connects to the daemon's Unix socket and relays the verdict. Rust because it starts in <1ms — bash has quoting bugs and needs `socat`, Elixir escript pays ~300ms BEAM boot per call, and a second Burrito binary would unpack on every cold invocation.
|
||||
- **Elixir daemon** — distributed as a [Burrito](https://github.com/burrito-elixir/burrito) binary (no Erlang/Elixir install needed)
|
||||
- **Adapter layer** — normalizes payloads across Claude Code, Gemini CLI, and Codex
|
||||
- **tree-sitter-bash** — Rust NIF for robust AST parsing of shell commands
|
||||
@@ -100,7 +100,7 @@ macOS (aarch64, x86_64) · Linux (x86_64, aarch64) · WSL
|
||||
|
||||
## Status
|
||||
|
||||
Design phase. See [`docs/superpowers/specs/2026-03-26-security-hooks-design.md`](docs/superpowers/specs/2026-03-26-security-hooks-design.md) for the full spec.
|
||||
Design phase. See [`docs/specs/2026-03-26-security-hooks-design.md`](docs/specs/2026-03-26-security-hooks-design.md) for the full spec.
|
||||
|
||||
## License
|
||||
|
||||
|
||||
Reference in New Issue
Block a user